[FC3] squid ftp blocked by selinux
Jurgen Kramer
gtm.kramer at inter.nl.net
Sat Jul 30 09:48:21 UTC 2005
After the last selinux policy update I can no longer use squid to proxy
FTP transfers. dmesg shows lots of:
audit(1122716171.029:8): avc: denied { name_connect } for pid=2553
comm="squid" dest=21 scontext=user_u:system_r:squid_t
tcontext=system_u:object_r:ftp_port_t tclass=tcp_socket
audit(1122716171.129:9): avc: denied { name_connect } for pid=2553
comm="squid" dest=21 scontext=user_u:system_r:squid_t
tcontext=system_u:object_r:ftp_port_t tclass=tcp_socket
audit(1122716171.229:10): avc: denied { name_connect } for pid=2553
comm="squid" dest=21 scontext=user_u:system_r:squid_t
tcontext=system_u:object_r:ftp_port_t tclass=tcp_socket
HTTP transfers still function fine. How can I fix this?
Jurgen
> selinux-policy-targeted-1.17.30-3.16
More information about the fedora-list
mailing list